If you are running Java™ 2
security on the WebSphere® Application
Server where Tivoli® Federated
Identity Manager is installed, you must
modify the java.policy to grant permission to the Tivoli Federated
Identity Manager directories that are
in the temp subdirectory of your WebSphere profile.
Procedure
- Locate the java.policy directory and open it in a text
editor. The default locations of the file are:
- AIX®
/usr/IBM/WebSphere/AppServer/java/jre/lib/security/java.policy
- Linux or Solaris
/opt/IBM/WebSphere/AppServer/java/jre/lib/security/java.policy
- Windows
C:\Program Files\IBM\WebSphere\AppServer
- Add the following lines to java.policy:
grant codeBase "file:${server.root}/temp/node_name/server_name/
ITFIMManagementService/-" {permission java.security.AllPermission;
};
grant codeBase "file:${server.root}/temp/node_name/server_name/
ITFIMRuntime/-" {permission java.security.AllPermission;
};
node_name is the name of the node such as IBM-FCFB36CC28ENode05
server_name is the name of the server such as server1
- Save and close the java.policy file.
- Restart WebSphere Application
Server.